February 14, 2014 1:00AM
Introducing Strict SSL: Protecting Against a On-Path Attack on Origin Traffic
TLS
HTTPS
Crypto
Encryption
SSL
Security
At CloudFlare, we are always looking for ways to improve the security of our customers’ websites. One of the features we provide is the ability to serve their website encrypted over SSL/TLS....
December 26, 2013 5:00PM
Using CloudFlare to mix domain sharding and SPDY
TLS
Google
Chrome
spdy
Speed & Reliability
Security
It’s common knowledge that domain sharding, where the resources in a web page are shared across different domains (or subdomains), is a good thing....
November 21, 2013 9:00AM
Red October: CloudFlare’s Open Source Implementation of the Two-Man Rule
Crypto
Open Source
Encryption
RSA
GitHub
TLS
Security
At CloudFlare, we are always looking for better ways to secure the data we’re entrusted with. This means hardening our system against outside threats such as hackers, but it also means protecting against insider threats....
July 12, 2013 12:02AM
Staying on top of TLS attacks
TLS
RC4
Attacks
Security
CloudFlare makes extensive use of TLS connections throughout our
service which makes staying on top of the latest news about security problems with TLS a priority. We use TLS both externally and internally and different uses of TLS have different constraints....
February 04, 2013 2:26PM
New "Lucky Thirteen" SSL Vulnerabilities: CloudFlare Users Protected
TLS
SSL
Vulnerabilities
Security
CloudFlare often gets early word of new vulnerabilities before they are released. Last week we got word that today (Monday, February 4, 2013) there would be a new SSL vulnerability announced....
June 29, 2012 3:15AM
How to make SSL fast
HTTP, the protocol of the web, is unencrypted by default. That means it is trivial for someone using the same local network as you to spy on all the data you send to and receive from most websites....